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DETAILED ACTION 
Claim Rejections - 35 USC§101 

1. 35 U.S.C. 101 reads as follows: 

Whoever invents or discovers any new and useful process, machine, manufacture, or composition of matter, or 
any new and useful improvement thereof, may obtain a patent therefor, subject to the conditions and 
requirements of this title. 

2. Claims 1-6 and 31 the claimed invention is directed to non-statutory subject matter 
because a firewall which is claimed is just software and data structures. The Examiner suggest 
claim 7 and 32 can be incorporated into independents since router defined as hardware in the 
specification. 

Claim Rejections - 35 USC §102 

3. The following is a quotation of the appropriate paragraphs of 35 U.S.C. 102 that form the 
basis for the rejections under this section made in this Office action: 

A person shall be entitled to a patent unless - 

(e) the invention was described in (1) an application for patent, published under section 122(b), by another filed, 
in the United States before the invention by the applicant for patent or (2) a patent granted on an application for 
patent by another filed in the United States before the invention by the applicant for patent, except that an 
international application filed under the treaty defined in section 351 (a) shall have the effects for purposes of this 
subsection of an application filed in the United States only if the international application designated the United 
States and was published under Article 21(2) of such treaty in the English language. 

4. Claims 1-2, 4-10, 12-30 are rejected under 35 U.S.C. 102(e) as being anticipated by 
Kung(2003/0196108). 

5. As per claim 1, Kung discloses a firewall[fig. 1, 40a] capable of creating a plurality of 
trust levels for a plurality of computer networks[0034], 

6. As per claims 2, 16, 19, 23, 26, 30 Kung discloses a plurality of rules [0024and a table 
defining the relationship between the trust levels, the rules, and the computer networks[0025]. 

7. As per claim 4, Kung discloses wherein the firewall further includes a security program 
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wherein the security program analyzes a packet and determines if the rules permit or deny the 
packet[0033]. 

8. As per claim 5, Kung discloses wherein the security program includes instructions for 
determining the destination of the packet[0033]instructions for determining the appropriate rules 
to use to analyze the packet using the table;[0022] instructions for analyzing the packet using the 
rules; instructions for determining if the packet is permitted under the rules; responsive to a 
determination that the rules permit the packet, instructions for permitting the packet; and 
responsive to a determination that the rules deny the packet, instructions for denying the 
packet[0060, 0064-0065] 

9. As per claim 6, Kung discloses wherein the security program further includes responsive 
to a determination that the rules do not permit or deny the packet, instructions for denying the 
packet[0033]. 

10. As per claim 7, Kung discloses wherein the firewall is part of a router[0025, 0027], 

11. As per claim 8, Kung discloses a router including a switch connected to a firewall and a 
plurality of computer networks and wherein the firewall creates a plurality of trust levels and 
associates a trust level with each computer network[0025-0027]. 

12. As per claim 9, Kung discloses wherein the switch includes a sub-switch, the sub- 
switch[0031]; being assigned one of a plurality of trust levels[0027]. 

13. As per claim 10, Kung discloses wherein the firewall analyzes a packet using some of the 
rules[0033]; and Kung discloses and wherein the rules used in the lower trust levels are excluded 
fi-om the rules used to analyze the packet[0025, 0079-0086]. 

14. As per claim 12, Kung discloses wherein the firewall fiirther includes a security program, 
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wherein the security program analyzes a packet and determines if the rules permit or deny the 
packet[0033, 0060, 0064-0065]. 

15. As per claims 13, 20, 27, Kung discloses wherein the security program comprises: 
instructions for determining the sub-switch location of the packet[0031] instructions for 
determining a source of the packet; instructions for determining a destination of the 
packet[0033]; Kung discloses and instructions for determining if the packet is attempting to go 
to a higher trust level; responsive to a determination that the packet is not attempting to go to a 
higher trust level, instructions for permitting the packet[0068, 0079-0086]. 

16. Same Motivation as claim 13. As per claim 14, Kung et al. discloses the security ^ 
program further comprises: instructions for determining the appropriate rules to use to analyze 
the packet using the table[0033]instructions for analyzing the packet using the rules; instructions 
for determining if the packet is permitted under the rules; responsive to a determination that the 
rules permit the packet, instructions for permitting the packet; and responsive to a determination 
that the rules deny the packet, instructions for denying the packet[0033-0034, 0063]; Kung 
discloses wherein responsive to a determination that the packet is attempting to go to a higher 
trust level[0068, 0079-0086]. 

17. As per claim 15, Kung discloses wherein the security program further includes 
responsive to a determination that the rules do not permit or deny the packet, instructions for 
denying the packet[0033]. 

18. As per claim 16, Kung discloses wherein the firewall further includes a table defining the 
relationship between the trust levels, the rules, and the computer networks[0025, 0034], 
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19. As per claim 17, Kung discloses a method for analyzing a packet using a firewall[0033] 
determining the destination of the packet; accessing a plurality of rules; determining the 
appropriate rules to use to analyze the packet; analyzing the packet using the rules; determining 
if the packet is permitted under the rules; responsive to a determination that the rules permit the 
packet, permitting the packet; and responsive to a determination that the rules deny the packet, 
denying the packet[0068, 0079-0086]. Kung discloses which creates a plurahty of trust levels 
for a plurality of computer[0025]. 

20. As per claim 18, Kung discloses responsive to a determination that the rules do not 
permit or deny the packet, denying the packet[0033-0034] 

21. Same Motivation as claim 13. As per claim 21, Kung discloses wherein, the method 

further comprises: determining the appropriate rules to use to analyze the packet using the 

table(see col. 3, lines 4-11); analyzing the packet using the rules; determining if the packet is 

permitted under the rules; responsive to a determination that the rules permit the packet, 

permitting the packet; and responsive to a determination that the rules deny the packet, denying 

« 

the packet(see col. 4, lines 33-58). Kung discloses determination that the packet is attempting to 
go to a higher trust level[0068, 0079-0086]. 

22. As per claim 22, Kung discloses wherein the security program further includes 
responsive to a determination that the rules do not permit or deny the packet, denying the 
packet[0033]. 

23. As per claim 24, Kung discloses instructions for determining the destination of the 
packet[0068]instructions for accessing a pliu^ahty of rules; instructions for determining the 
appropriate rules to use to analyze the packet; instructions for analyzing the packet using the 
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rules; instructions for determining if the packet is permitted under the rules; responsive to a 
determination that the rules permit the packet, instructions for permitting the packet; and 
responsive to a determination that the rules deny the packet, instructions for denying the 
packet [0068, 0079-0086]. 

24. As per claim 25, Kung discloses responsive to a determination that the rules do not 
permit or deny the packet, instructions for denying the packet[0033]. 

25. As per claim 28, Kung discloses determining the appropriate rules to use to analyze the 
packet using the table[0033, 0053-0055]; instructions for analyzing the packet using the rules; 
instructions for determining if the packet is permitted under the rules; responsive to a 
determination that the rules permit the packet, instructions for permitting the packet; and 
responsive to a determination that the rules deny the packet, instructions for denying the 
packet[0068, 0079-0086]; Kung discloses wherein responsive to a determination that the packet 
is attempting to go to a higher trust level[0068, 0079-0086]. 

26. As per claim 29, Kung discloses wherein the security program further includes 
responsive to a determination that the rules do not permit or deny the packet, instructions for 
denying the packet[0033]. 

Claim Rejections - 35 USC §103 

27. The following is a quotation of 35 U.S.C. 103(a) which forms the basis for all 
obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set forth in 
section 102 of this title, if the differences between the subject matter sought to be patented and the prior art are 
such that the subject matter as a whole would have been obvious at the time the invention was made to a person 
having ordinary skill in the art to which said subject matter pertains. Patentability shall not be negatived by the 
manner in which the invention was made. 
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28. Claims 3, 1 1, 31-32 are rejected under 35 U.S.C. 103(a) as being unpatentable over 
- Kung(2003/0196108) in view of Taylor(6,728,885). 

29. Claims 3, 1 1, and 31, Kung is silent on wherein the firewall further includes: a 
configuration program, wherein the configuration program allows a user to add, delete, or 
modify the rules and trust levels in the table. Taylor discloses wherein the firewall further 
includes: a configuration program, wherein the configuration program allows a user to add, 
delete, or modify the rules and trust levels in the table(see col. 6, lines 43-57). It would have 
been obvious to one of ordinary skill in the art at the time of the invention to include a 
configuration program, wherein the configuration program allows a user to add, delete, or 
modify the rules and trust levels in the table of Taylor with Kirby, because a configuration 
program allows a system administrator to create the configuration information that specifies the 
rules by utilizing a graphical user interface, thus enabling the user to set up rules to be used by 
the firewall(see col. 6, lines 43-57 of Taylor). 

30. As per claim 32, Kung discloses wherein the firewall is part of a router[0025, 0027]. 

31. As per claim 3 1 , similar limitations have already been addressed by Kung(see claim 1). 
Claim 31, also claims a configuration program which was rejected under Taylor(see above). 

Conclusion 

Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Jenise E. Jackson whose telephone number is (571) 272-3791. 
The examiner can normally be reached on M-Th (6:00 a.m. - 3:30 p.m.) altemate Friday's. 
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If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Ayaz Sheikh can be reached on (571) 272-3795. The fax phone number for the 
organization where this appUcation or proceeding is assigned is 571-273-8300. 

Information regarding the status of an application may be obtained from the Patent 
Application Information Retrieval (PAIR) system. Status information for published appHcations 
may be obtained from either Private PAIR or Public PAIR. Status information for unpublished 
applications is available through Private PAIR only. For more information about the PAIR 
system, see http://pair-direct.uspto.gov. Should you have questions on access to the Private PAIR 
system, contact the Electronic Business Center (EBC) at 866-217-9197 (toll-free). If you would 
like assistance from a USPTO Customer Service Representative or access to the automated 
information system, call 800-786-9199 (IN USA OR CANADA) or 571-272-1000. 
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